PogoWasRight, 5 months ago to random

CBIZ KA notified nine Prime Healthcare hospitals that some of their patient data was caught up in the #MOVEit #databreach. As I report this morning on databreaches.net, here are the 9 hospitals:

Saint Michael’s Medical Center,
Roxborough Memorial Hospital,
Garden City Hospital,
Landmark Medical Center,
Lower Bucks Hospital,
Saint Clare's Hospital,
Lake Huron Medical Center,
St. Mary's General Hospital, and
Suburban Community Hospital

According to a spokesperson for Prime Healthcare, it was just these hospitals and not any of their other 36 hospitals or more than 300 outpatient locations in 14 states.

I don't have any numbers yet on this one.

#HIPAA #Vendor #Clop

PogoWasRight, 7 months ago to random

Another #MOVEit report: Aretis Health is business associate to NorthStar Anesthesia. Notified on behalf of 50 entities/clients listed at https://www.arietishealth.com/notice-of-security-incident/

They notified HHS, but listing isn't up there yet.

@brett

#HIPAA #databreach #hack #Clop #HealthSec

PogoWasRight, 8 months ago to Cybersecurity

This week, Nuance (a MSFT-owned tech firm) disclosed a number of their clients who are HIPAA-covered entities were affected by the MOVEit breach. They did not reveal numbers and their disclosure is not on HHS's public breach tool yet.

But other covered entities of theirs may have chosen to make their own disclosures. While Nuance disclosed for some (see https://www.databreaches.net/more-victims-of-moveit-breach-are-revealed-nuance-discloses-for-covered-entities/)

St. Luke's Health System in Idaho did its own disclosure, reporting that 4,679 of their patients were affected.

We still may see more.

#hack #clop #moveit #ransom #databreach #cybersecurity #HIPAA #incidentresponse

PogoWasRight, 8 months ago to Cybersecurity

RiteAid was just one of many victims of the #MOVEit #databreach by #Clop. Now they're being sued by plaintiffs who call them "reckless" and "negligent" for not having encrypted the protected health information.

Imagine if every covered entity or business associate who didn't encrypt #PHI got hacked was sued over a vendor breach.

In this day and age where healthcare entities are under siege, is it somewhat reckless or negligent not to encrypt? And if not, will it ever be generally considered reckless and negligent?

https://www.databreaches.net/rite-aid-one-of-many-victims-in-moveit-breach-sued-for-negligence/

#cybersecurity #HIPAA #HealthSec

jrefior, 8 months ago to cryptocurrency

"All 1.8 million Massachusetts customers of electricity and gas utility Eversource Energy were affected by a recent data breach that is part of a worldwide hack that has hit hundreds of companies and millions of people. The Eversource customers had their name, address, contact information and Eversource account and usage information taken"
https://www.cambridgeday.com/2023/08/29/every-eversource-customer-in-the-state-is-exposed-by-data-breach-but-solar-program-is-hit-the-worst/

#Eversource #MOVEit #databreach #clop #ransomware #cryptocurrency

jgreig, 9 months ago to random

Clop just removed Maximus - which provides IT for Medicaid, Medicare and more gov't programs - after the company confirmed 10 million people may have had their info accessed

https://therecord.media/contractor-says-data-on-up-to-10-million-leaked-in-moveit-attack

#MOVEit #Clop #Maximus

jgreig, 9 months ago to random

Deloitte confirmed to me that they were affected: "Our analysis determined that our global network use of the vulnerable MOVEit Transfer software is limited. Having conducted our analysis, we have seen no evidence of impact to client data."

"Immediately upon becoming aware of this zero-day vulnerability, Deloitte applied the vendor’s security updates and performed mitigating actions in accordance with the vendor’s guidance."

According to Emsisoft, there are now more than 500 victims.

#Deloitte #MOVEit #Clop

https://therecord.media/tag/moveit

BlackCat, Clop claim ransomware attack on cosmetics maker Estee Lauder (therecord.media)

U.S. cosmetics manufacturer Estee Lauder has suffered a cyberattack, the company confirmed on Tuesday.

jrefior, 10 months ago to cryptocurrency

"The Russia-linked #ransomware gang has been exploiting the security flaw in MOVEit Transfer, a tool used by corporations and enterprises to share large files over the internet, since late May"
https://techcrunch.com/2023/06/15/moveit-clop-mass-hacks-banks-universities/

"Hackers have compromised the personal data of more than 15.5 million individuals by exploiting a security vulnerability in the MOVEit file transfer tool, and the number of victim organizations continues to grow"
https://techcrunch.com/2023/06/29/millions-affected-moveit-mass-hacks/

Thanks #cryptocurrency!

#Russia #clop

falconfeedsio, 10 months ago to infosec

CL0P #ransomware group added 9 new victims to their #darkweb portal.

• TJX Companies Inc 🇺🇸
• Vitesco Technologies 🇩🇪
• Valmet 🇫🇮
• Fortescue 🇦🇺
• DESMI 🇩🇰
• Crum & Forster 🇺🇸
• Compucom 🇺🇸
• Sierra Wireless 🇨🇦
• RCI 🇺🇸

#clop #moveit #deepweb #cyberrisk #infosec #USA #Germany #Finland #Australia #Demark #Canada

johnleonard, 10 months ago to infosec

Criminals breach Dublin airport staff data

The financial details of nearly 2,000 #Dublin airport staff have been exposed following a recent cyberattack targeting services firm Aon.

https://www.computing.co.uk/news/4119368/criminals-breach-dublin-airport-staff

#technews #infosec #ransomware #clop

itnewsbot, 10 months ago to security

Casualties keep growing in this month’s mass exploitation of MOVEit 0-day - Enlarge (credit: Getty Images)

The dramatic fallout continues ... - https://arstechnica.com/?p=1950451 #security #zero-day #biz⁢ #moveit #clop

AAKL, 10 months ago to Cybersecurity

You might want to take note if you missed this: #cybersecurity #infosec

$10 Million Offered to End #Clop #Ransomware Spree Through State Department “Reward for Justice” Program https://www.cpomagazine.com/cyber-security/10-million-offered-to-end-clop-ransomware-spree-through-state-department-reward-for-justice-program/ @cpomagazine

PogoWasRight, 11 months ago to infosec

NYC schools disclose student and staff information affected by MOVEit breach; National Student Clearinghouse silent on question of extortion payment:
https://www.databreaches.net/nyc-schools-disclose-student-and-staff-information-affected-by-moveit-breach-national-student-clearinghouse-silent-on-question-of-extortion-payment/

#MOVEit #Clop #extortion #databreach #thirdparty #infosec #cybersecurity #transparency #incidentresponse

@brett @douglevin @funnymonkey @mkeierleber

AAKL, 11 months ago to Cybersecurity

There's a hefty reward in store for those who know about #Clop #ransomware links #cybersecurity #infosec https://www.techradar.com/news/theres-a-hefty-reward-in-store-for-those-who-know-about-clop-ransomware-links @techradar

AAKL, 11 months ago to Cybersecurity

A step too far. You have to know when to do draw the line. This will cost them. #cybersecurity #infosec

US govt offers $10 million bounty for info on #Clop #ransomware https://www.bleepingcomputer.com/news/security/us-govt-offers-10-million-bounty-for-info-on-clop-ransomware/ @BleepingComputer @lawrenceabrams

securityaffairs, 11 months ago to hacking Italian

US govt offers $10 million bounty for info linking #Clop #ransomware gang to a foreign government.
https://securityaffairs.com/147577/cyber-crime/clop-ransomware-reward.html
#securityaffairs #hacking

AAKL, 11 months ago to Cybersecurity

From yesterday: #cybersecurity #infosec

Oil and gas giant Shell is another victim of #Clop #ransomware attacks https://securityaffairs.com/147545/cyber-crime/shell-clop-ransomware-attacks.html @securityaffairs

BleepingComputer, 11 months ago to random

The MOVEit Transfer extortion attacks continue to dominate the news cycle, with the Clop ransomware operation now extorting organizations breached in the attacks.

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-june-16th-2023-wave-of-extortion/

PogoWasRight, 11 months ago to infosec

At least two states' motor vehicle agencies became victims of the MOVEit breach. Oregon says it may be 3.5 million, and no numbers yet for Louisiana.

https://www.databreaches.net/oregon-dmv-louisiana-omv-warn-residents-of-moveit-data-breach/

#databreach #MOVEit #hack #extortion #Clop #infosec #ITsec #cybersecurity #filetransfer

PogoWasRight, 11 months ago to random

Is anyone compiling a list that they are sharing of MOVEit victims?

#hack #vulnerability #Progress #MoveIT #Clop #extortion

gtbarry, 11 months ago to infosec

The Clop ransomware gang issued an ultimatum with a June 14 deadline in a recent large-scale hack of payroll data

The Clop group has been blamed for the breach that saw payroll data of more than 100,000 staff stolen at firms including the BBC, British Airways and high street pharmacy Boots

#Moveit #BBC #BA #BritishAir #Boots #russia #russian #clop #databreach #payroll #hr #ransomware #malware #security #cybersecurity #infosec #hackers #hacking #hacked

https://www.securityweek.com/hackers-issue-ultimatum-over-payroll-data-breach/

AAKL, 11 months ago to infosec

#Clop cybercriminals issue ‘Ultimatum’ Over Payroll Data Breach #ransomware #cybersecurity #infosec https://www.securityweek.com/hackers-issue-ultimatum-over-payroll-data-breach/ @afpfr via @SecurityWeek

AAKL, 11 months ago to infosec

#Clop #Ransomware Gang Breaches Big Names Via MOVEit Flaw #cybersecurity #infosec https://www.infosecurity-magazine.com/news/clop-ransom-gang-big-names-moveit/

This research paper is from 2022. A lot has changed since, but there's a good history here of the Clop Ransomware gang and its methods https://www.trendmicro.com/vinfo/us/security/news/ransomware-spotlight/ransomware-spotlight-clop @TrendMicro

itnewsbot, 11 months ago to random

Mass exploitation of critical MOVEit flaw is ransacking orgs big and small - Enlarge (credit: Getty Images)

Organizations big and small are... - https://arstechnica.com/?p=1945579 #ransomware #biz⁢ #moveit #clop